User: Password:
|
|
Subscribe / Log in / New account

Mageia alert MGASA-2014-0246 (libgadu)

From:  Mageia Updates <buildsystem-daemon@mageia.org>
To:  updates-announce@ml.mageia.org
Subject:  [updates-announce] MGASA-2014-0246: Updated libgadu package fixes CVE-2014-3775
Date:  Fri, 30 May 2014 09:50:32 +0200
Message-ID:  <20140530075032.843775C837@valstar.mageia.org>

MGASA-2014-0246 - Updated libgadu package fixes CVE-2014-3775 Publication date: 30 May 2014 URL: http://advisories.mageia.org/MGASA-2014-0246.html Type: security Affected Mageia releases: 3, 4 CVE: CVE-2014-3775 Description: Updated libgadu packages fix security vulnerability: It was discovered that libgadu incorrectly handled certain messages from file relay servers. A malicious remote server or a man in the middle could use this issue to cause applications using libgadu to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2014-3775). References: - http://libgadu.net/releases/1.11.4.html - http://www.ubuntu.com/usn/usn-2215-1/ - https://bugs.mageia.org/show_bug.cgi?id=13410 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3775 SRPMS: - 4/core/libgadu-1.11.4-1.mga4 - 3/core/libgadu-1.11.4-1.mga3


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds